Sensitive data lifecycle protection
  1. 1 All-encompassing protection with deep integration
  2. 2 Strong database security and CRUD-aware crypto access
  3. 3 End-to-end by design, no plaintext outside owner's context

Protect whole data lifecycle.

Toughbase offers sensitive data lifecycle protection, encompassing most threats that might happen to client data within your system. It uses Hermes and Themis as core frameworks to build protections around sensitive data in its ingestion, storage, usage and distribution. Currently, in development, Toughbase offers a cryptographic framework designed to streamline secure, auditable, multi-party sensitive data creation, consumption, collaboration and management in modern client-server architectures.

Toughbase is focused on simplifying the process of securing customer data in contexts where the cost of its compromise is high, such as within online service providers or financial institutions.

Toughbase is currently in pre-release testing with selected partners, you may request early demo by contacting us.

Toughbase provides

Simple, low-friction implementation
Toughbase is easy integrate with typical architectures "out of the box”. It has native libraries for popular languages, platforms and development frameworks, supports a wide range of databases, storages and key infrastructures. By separating complex cryptographic protocols and abstract cryptosystems from implementation, Toughbase enables flexible implementations of pre-concieved security principles with minimum effort and risk.
Unique security features
Toughbase offers granular access control over arbitrary structure: JSON/XML trees, SQL rows/tables, files and filesystems. Access control policy, albeit cryptographic, can be changed without re-encrypting the data. Granularity and cryptographic authorization enables building provable audit trails. Features like randomized tokenization, query indirection, zero-knowledge requests enable building additional layers of security around your data.

Works best for...

Toughbase is specifically useful for industries with strong demands for customer data protection, where sensitive data breach might lead to serious consequences, such as:

  • Fintech and e-commerce
  • Healthcare and medical records
  • SaaS
  • Embedded
Available Q4 2017

Copyright © 2014-2017 Cossack Labs Limited
Cossack Labs is a privately-held British company with a team of data security experts based in Kyiv, Ukraine.